HIPPAA security incident notice from Primary Care Specialists, Inc.

On February 27, 2017, Primary Care Specialists, Inc. (“PCS”) was the victim of a cyber-attack in which an unauthorized, unknown third party encrypted two data servers.

On March 3, 2017, PCS determined that a malware attack may have affected protected health information of historical patient medical records, including patient medical files. The types of protected health information potentially involved in this incident includes name, address, date of birth, insurance/payment information, social security number and medical information (diagnosis, medications, treatments, etc.).

Since that time, we have worked with the Federal Department of Health and Human Services to conduct a thorough investigation into this incident.  PCS does not believe that the cyber-criminal will or has used or disclosed your protected health information in an inappropriate manner.  We take the protection of patient information very seriously, and we sincerely regret that this incident involving your medical information occurred. 

As required by HIPPAA we are providing this and additional means of notice to our patients and the public.  While this was a third-party, unforeseen criminal cyber-attack, we are working to analyze and improve our security systems and internal policies and procedures to provide the utmost protection to our patients.

Although we sincerely believe the cyber-criminal responsible for this attack is unable to access or use patient information, if you would like to take additional steps to reduce any potential risk to your protected health information, you may place a fraud alert with a credit reporting agency and review your credit reports periodically. You may find helpful materials outlining precautionary steps you can take, found online at http://www.consumer.ftc.gov. 

Patient Inquiries may be directed to: If you have any questions or concerns, please call 888-750-9219, 9 a.m. to 9 p.m. (Eastern Time), Monday through Friday.